Hello again.
I recently had problems with SSL_SESSION_ID variable. But I have no
longer, because of two reasons:
1. It turned out that SSLSessionCache had to be configured, which was
not mentioned anywhere.
2. SSLSessionCache is just an optimization to reduce the number of
handshakes done between server and client, and cannot be used to
uniquely identify the client on the server side.
So, I no longer need the ssl-session-id :)
--
Janis Dzerins
If million people say a stupid thing, it's still a stupid thing.